June 2017
Beginner to intermediate
742 pages
18h 29m
English
Content preview from Mastering Active Directory
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Password synchronization
If you use express settings for the AD Connect setup, by default, it enables password synchronization as well. This allows users to use the same AD password to authenticate to cloud-based workloads. It simplifies the user login experience and reduces helpdesk involvement.
As we discussed in Chapter 15, Active Directory Security Best Practices, AD uses hash values, which are generated by a hash algorithm, as passwords. They are not saved as clear text, and it is almost impossible to revert it to the original clear text password. There is misunderstanding about this as some people think Azure AD password sync uses clear text passwords. Every two minutes, the Azure AD connect server retrieves password hashes from the ...